City: Shanghai
Region: Shanghai
Country: China
Internet Service Provider: China Mobile
Hostname: unknown
Organization: unknown
Usage Type: unknown
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '223.160.0.0 - 223.163.255.255'
% Abuse contact for '223.160.0.0 - 223.163.255.255' is 'liw@chinabtn.com'
inetnum: 223.160.0.0 - 223.163.255.255
netname: CHINABTN
descr: China Cable Television Network Co.,LTD
descr: No.11 B-01, XiSanHuanZhong Road, HaiDian District,
descr: Beijing, P.R.China 100036
country: CN
admin-c: TC487-AP
tech-c: TC487-AP
abuse-c: AC1601-AP
status: ALLOCATED PORTABLE
mnt-by: MAINT-CNNIC-AP
mnt-irt: IRT-CHINABTN-CN
mnt-lower: MAINT-CNNIC-AP
mnt-routes: MAINT-CNNIC-AP
last-modified: 2023-11-28T00:57:30Z
source: APNIC
irt: IRT-CHINABTN-CN
address: B-01, 11 West Third Ring Middle Road, Beijing (Central Broadcasting and Television Tower)
e-mail: liw@chinabtn.com
abuse-mailbox: liw@chinabtn.com
admin-c: TC487-AP
tech-c: TC487-AP
auth: # Filtered
mnt-by: MAINT-CNNIC-AP
last-modified: 2025-11-18T00:35:08Z
source: APNIC
role: ABUSE CNNICCN
country: ZZ
address: Beijing, China
phone: +000000000
e-mail: ipas@cnnic.cn
admin-c: IP50-AP
tech-c: IP50-AP
nic-hdl: AC1601-AP
remarks: Generated from irt object IRT-CNNIC-CN
remarks: ipas@cnnic.cn is invalid
abuse-mailbox: ipas@cnnic.cn
mnt-by: APNIC-ABUSE
last-modified: 2025-09-19T17:20:32Z
source: APNIC
person: Tao Chen
nic-hdl: TC487-AP
e-mail: ccn@chinabtn.com
address: No.11 B-01, XiSanHuanZhong Road, HaiDian District, Beijing
phone: +86-010-68455414
fax-no: +86-010-86091631
country: CN
mnt-by: MAINT-CNNIC-AP
last-modified: 2008-09-04T07:30:10Z
source: APNIC
% This query was served by the APNIC Whois Service version 1.88.48 (WHOIS-AU4)
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 223.160.157.19
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 64949
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;223.160.157.19. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2026070200 1800 900 604800 86400
;; Query time: 7 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Jul 02 18:33:31 CST 2026
;; MSG SIZE rcvd: 107
Host 19.157.160.223.in-addr.arpa. not found: 3(NXDOMAIN)
Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 19.157.160.223.in-addr.arpa: NXDOMAIN
| IP | Type | Details | Datetime |
|---|---|---|---|
| 188.163.104.75 | attackbots | 188.163.104.75 - - [29/Jun/2020:15:41:11 +0100] "POST /wp-login.php HTTP/1.1" 200 2065 "https://therockpool.org/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/53.0.2785.143 Safari/537.36" 188.163.104.75 - - [29/Jun/2020:15:41:12 +0100] "POST /wp-login.php HTTP/1.1" 200 2065 "https://therockpool.org/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/53.0.2785.143 Safari/537.36" 188.163.104.75 - - [29/Jun/2020:15:45:44 +0100] "POST /wp-login.php HTTP/1.1" 200 2065 "https://therockpool.org/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/53.0.2785.143 Safari/537.36" ... |
2020-06-29 22:47:12 |
| 124.225.220.12 | attack | Fail2Ban Ban Triggered |
2020-06-29 22:48:29 |
| 112.74.205.23 | attack | fail2ban/Jun 29 13:12:03 h1962932 proftpd[9997]: 0.0.0.0 (112.74.205.23[112.74.205.23]) - USER mobilechicks: no such user found from 112.74.205.23 [112.74.205.23] to 85.214.45.150:21 Jun 29 13:12:05 h1962932 proftpd[9998]: 0.0.0.0 (112.74.205.23[112.74.205.23]) - USER mobilechicks: no such user found from 112.74.205.23 [112.74.205.23] to 85.214.45.150:21 Jun 29 13:12:05 h1962932 proftpd[10044]: 0.0.0.0 (112.74.205.23[112.74.205.23]) - USER mobilechicks: no such user found from 112.74.205.23 [112.74.205.23] to 85.214.45.150:21 |
2020-06-29 21:51:50 |
| 69.90.69.8 | attack | Idiots |
2020-06-29 22:42:41 |
| 118.70.72.103 | attackbots | Jun 29 11:11:50 *** sshd[27039]: User root from 118.70.72.103 not allowed because not listed in AllowUsers |
2020-06-29 22:30:06 |
| 159.65.224.137 | attack |
|
2020-06-29 21:50:41 |
| 116.236.251.214 | attack | 2020-06-29T15:34:08.859926galaxy.wi.uni-potsdam.de sshd[19940]: Invalid user test from 116.236.251.214 port 45099 2020-06-29T15:34:08.864920galaxy.wi.uni-potsdam.de sshd[19940]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.236.251.214 2020-06-29T15:34:08.859926galaxy.wi.uni-potsdam.de sshd[19940]: Invalid user test from 116.236.251.214 port 45099 2020-06-29T15:34:10.888182galaxy.wi.uni-potsdam.de sshd[19940]: Failed password for invalid user test from 116.236.251.214 port 45099 ssh2 2020-06-29T15:37:07.933476galaxy.wi.uni-potsdam.de sshd[20262]: Invalid user oracle from 116.236.251.214 port 32404 2020-06-29T15:37:07.938508galaxy.wi.uni-potsdam.de sshd[20262]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.236.251.214 2020-06-29T15:37:07.933476galaxy.wi.uni-potsdam.de sshd[20262]: Invalid user oracle from 116.236.251.214 port 32404 2020-06-29T15:37:10.202693galaxy.wi.uni-potsdam.de sshd[20262]: F ... |
2020-06-29 22:50:11 |
| 222.186.30.112 | attack | Jun 29 16:35:26 home sshd[25898]: Failed password for root from 222.186.30.112 port 46774 ssh2 Jun 29 16:35:28 home sshd[25898]: Failed password for root from 222.186.30.112 port 46774 ssh2 Jun 29 16:35:31 home sshd[25898]: Failed password for root from 222.186.30.112 port 46774 ssh2 ... |
2020-06-29 22:36:54 |
| 51.77.66.35 | attackbotsspam | Cowrie Honeypot: 10 unauthorised SSH/Telnet login attempts between 2020-06-29T12:48:18Z and 2020-06-29T13:18:24Z |
2020-06-29 21:38:16 |
| 143.202.226.182 | attack | TCP src-port=45479 dst-port=25 Listed on dnsbl-sorbs abuseat-org barracuda (Project Honey Pot rated Suspicious) (140) |
2020-06-29 21:49:22 |
| 118.89.173.215 | attack | Unauthorized connection attempt detected from IP address 118.89.173.215 to port 3469 |
2020-06-29 22:29:35 |
| 106.13.60.28 | attack | Jun 29 14:12:39 h1745522 sshd[16455]: Invalid user netflix from 106.13.60.28 port 37446 Jun 29 14:12:39 h1745522 sshd[16455]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.60.28 Jun 29 14:12:39 h1745522 sshd[16455]: Invalid user netflix from 106.13.60.28 port 37446 Jun 29 14:12:41 h1745522 sshd[16455]: Failed password for invalid user netflix from 106.13.60.28 port 37446 ssh2 Jun 29 14:17:12 h1745522 sshd[16644]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.60.28 user=root Jun 29 14:17:14 h1745522 sshd[16644]: Failed password for root from 106.13.60.28 port 37040 ssh2 Jun 29 14:19:24 h1745522 sshd[16709]: Invalid user stud from 106.13.60.28 port 50956 Jun 29 14:19:24 h1745522 sshd[16709]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.60.28 Jun 29 14:19:24 h1745522 sshd[16709]: Invalid user stud from 106.13.60.28 port 50956 Jun 29 14:19:26 ... |
2020-06-29 22:30:56 |
| 168.245.117.238 | attackspam | Return-Path: bounces+17224171-eb2b-office=bon-it.co.uk@sendgrid.net Received: from xvfrtrzz.outbound-mail.sendgrid.net (xvfrtrzz.outbound-mail.sendgrid.net [168.245.117.238]) We recently reviewed your account, and we suspect an unauthorized activity. For security reasons your Online Banking access to your accounts has been blocked to prevent unauthorised use. |
2020-06-29 22:41:08 |
| 192.168.1.73 | spambotsattackproxy | lol |
2020-06-29 22:19:39 |
| 157.245.204.153 | attackbots | fail2ban/Jun 29 14:39:28 h1962932 sshd[29747]: Invalid user swa from 157.245.204.153 port 39364 Jun 29 14:39:28 h1962932 sshd[29747]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.204.153 Jun 29 14:39:28 h1962932 sshd[29747]: Invalid user swa from 157.245.204.153 port 39364 Jun 29 14:39:30 h1962932 sshd[29747]: Failed password for invalid user swa from 157.245.204.153 port 39364 ssh2 Jun 29 14:45:56 h1962932 sshd[13271]: Invalid user asia from 157.245.204.153 port 9421 |
2020-06-29 22:27:56 |